Adobe Robohelp version 2020.0.3 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with admin permissions to write to the file system could leverage this vulnerability to escalate privileges.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/robohelp/apsb21-20.html | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
28 Jun 2021, 20:11
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 9.3
v3 : 6.5 |
28 Jun 2021, 13:15
Type | Values Removed | Values Added |
---|---|---|
Summary | Adobe Robohelp version 2020.0.3 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with admin permissions to write to the file system could leverage this vulnerability to escalate privileges. |
22 Apr 2021, 20:03
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-427 | |
CPE | cpe:2.3:a:adobe:robohelp:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 9.3
v3 : 7.8 |
References | (MISC) https://helpx.adobe.com/security/products/robohelp/apsb21-20.html - Patch, Vendor Advisory |
19 Apr 2021, 13:26
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-04-19 13:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-21070
Mitre link : CVE-2021-21070
CVE.ORG link : CVE-2021-21070
JSON object : View
Products Affected
microsoft
- windows
adobe
- robohelp
CWE
CWE-427
Uncontrolled Search Path Element